Heads-up: Crossbow 1.3

Heads-up: Crossbow 1.3

Date: Wed, 7 Oct 2009 14:46:39 -0700
From: Eric Cheng <tlc at sun dot com>
To: on-all at sun dot com, onnv-gate at onnv dot eng dot sun dot com
Subject: Heads-up: Crossbow 1.3

The putback of:

PSARC/2009/436 Anti-spoofing Link Protection
PSARC/2009/488 flowadm(1m) remote_port flow attribute
6884729 Integrate Link Protection Phase I
6882391 Offer flowadm -a remote_port

introduces two new Solaris features:

1. Link protection - this allows an administrator to prevent certain
   types of spoofed packets from being sent from a link. This is
   typically used in virtual environments (zones/domU) where individual
   domains can't be trusted to behave properly. In this phase, we deliver
   support for anti-spoofing of IP addresses (v4 only), mac addresses, and
   non-IP l2 frames.

2. flowadm remote_port attribute - this allows flows to created with the
   'remote_port' attribute. A flow is typically used for enforcing resource
   controls (e.g. bandwidth limit) on the type of traffic described by the
   flow.

kernel bugs may be filed under kernel/gld.
CLI related bugs may be filed under network/dladm or network/flowadm.

crossbow team
crossbow-core at sun dot com